[horde] Blacklisting after too many authentication failures

Simon Brereton simon.brereton at dada.net
Tue Oct 26 12:14:21 UTC 2010


> -----Original Message-----
> From: horde-bounces at lists.horde.org [mailto:horde-
> bounces at lists.horde.org] On Behalf Of Paul van der Vlis

> Simon Brereton schreef:
> >> -----Original Message-----
> >> From: horde-bounces at lists.horde.org [mailto:horde-
> >> bounces at lists.horde.org] On Behalf Of Paul van der Vlis
> >
> >
> >> Is it possible to blacklist an IP from where too many
> authentication
> >> failures are coming?
> >
> > Fail2ban.org?
> 
> That would blacklist localhost.
> 
> Or do you mean checking the logs from the IMAP server and tehn
> blacklisting the HTTP access?
> 
> Are here people who are doing something like this?

You're right - I hadn't thought of that.  But you're also right, fail2ban should be flexible enough to block any and all access from failed IMAP authentications.


Simon




More information about the horde mailing list